Bug ID 551819: NTLM Type 1 message no longer sets NTLMSSP_NEGOTIATE_EXTENDED_SESSIONSECURITY flag

Last Modified: May 14, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP APM, Install/Upgrade(all modules)

Known Affected Versions:
12.0.0

Fixed In:
12.1.0, 12.0.0 HF1

Opened: Oct 09, 2015
Severity: 3-Major

Symptoms

In some NTLM deployment, the NTLMv1 & NTLMv2 SSO will fail, after upgrading to 12.0.0 release.

Impact

NTLMv1 and NTLMv2 SSO might fail.

Conditions

NTLM server rejects the Type 1 message when NTLMSSP_NEGOTIATE_EXTENDED_SESSIONSECURITY flag is not set.

Workaround

None

Fix Information

NTLM Type 1 message will set NTLMSSP_NEGOTIATE_EXTENDED_SESSIONSECURITY flag now.

Behavior Change